Title:
MALWARE DISCOVERY METHOD AND SYSTEM
Document Type and Number:
Japanese Patent JP2014182837
Kind Code:
A
Abstract:
PROBLEM TO BE SOLVED: To provide a method for identifying potentially harmful malware.SOLUTION: The method comprises the steps of: a) identifying an executable that is about to run; b) providing a monitoring agent that monitors all threads that are descendent of a thread initiated by the process of the executable; and c) configuring the monitoring agent to conclude that a high probability of malware presence exists, if one of the descendent threads reaches a target process in which suspicious patches are created.
Inventors:
AMIT KLEIN
YARON DYCIAN
GAL FRISHMAN
AVNER GIDEONI
YARON DYCIAN
GAL FRISHMAN
AVNER GIDEONI
Application Number:
JP2014054320A
Publication Date:
September 29, 2014
Filing Date:
March 18, 2014
Export Citation:
Assignee:
TRUSTEER LTD
International Classes:
G06F21/56
Domestic Patent References:
| JP2005527008A | 2005-09-08 | |||
| JP2012008777A | 2012-01-12 | |||
| JP2008021274A | 2008-01-31 |
Foreign References:
| EP2515250A1 | 2012-10-24 | |||
| WO2012135192A2 | 2012-10-04 | |||
| US20120324575A1 | 2012-12-20 |
Attorney, Agent or Firm:
Yusuke Hiraki
Mitsuo Sekiya
Toshiaki Watanabe
Hidekazu Matsumaru
Mikinori Hirose
Mitsuo Sekiya
Toshiaki Watanabe
Hidekazu Matsumaru
Mikinori Hirose